Set up LDAP authorization for surveys.m-e.org/results/

RESOLVED FIXED

Status

mozilla.org Graveyard
Server Operations
RESOLVED FIXED
10 years ago
3 years ago

People

(Reporter: stas, Assigned: oremj)

Tracking

Details

(URL)

(Reporter)

Description

10 years ago
Please publish the surveys.mozilla-europe.org site from the tags/production. I have added the /results/ directory and I would like to ask for setting the server so that this directory is protected and an LDAP authorization is required to access it. Please give the right to access it to the user smalolepszy@aviary.pl
Do we have an SSL certificate for this domain?  Anything using LDAP auth is required to be encrypted in transit. (Can't have people getting their email passwords sniffed since it's the same password, etc)
(Reporter)

Comment 2

10 years ago
We don't currently use any SSL on this site. How should I proceed in order to obtain a ceriticate?
(In reply to comment #2)
> We don't currently use any SSL on this site. How should I proceed in order to
> obtain a ceriticate?

Actually, we do. Check out https://backoffice.mozilla-europe.org/. The certificate used for that site has been signed by the Mozilla Root Certificate (http://wiki.mozilla.org/MozillaRootCertificate). If this new results page is only going to be used by internal personnel, you could probably get away with using the *.mozilla-europe.org cert signed by the Mozilla Root Certificate. If it needs to be accessible outside the corporation but still protected, then a real SSL cert would need to be used.
(Reporter)

Comment 4

10 years ago
Reed: That's right! Thanks, I didn't realize that.

I only need a couple of people to have the access (Pascal, Seth, Gandalf, me). So I think we'll be good with the *.mozilla-europe.org certificate.

As for the other people, we will have reports and exported data available for them, so no harm is done by the above solution.
(Assignee)

Updated

10 years ago
Assignee: server-ops → oremj
(Assignee)

Comment 5

10 years ago
LDAP auth has been set up with rights given to your user.
Status: NEW → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → FIXED
https://surveys.mozilla-europe.org/ is attempting to use the *.mozilla.org wildcard SSL certificate, which is not right.
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
(Assignee)

Comment 7

10 years ago
swapped.
Status: REOPENED → RESOLVED
Last Resolved: 10 years ago10 years ago
Resolution: --- → FIXED
Product: mozilla.org → mozilla.org Graveyard
You need to log in before you can comment on or make changes to this bug.